Search Results (Refine Search)
- Keyword (text search): unquoted search path
- Search Type: Search All
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-1610 |
Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory. Published: August 05, 2013; 9:22:52 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2013-1092 |
Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C: folder, related to an attempted launch of (1) ZenRem32.exe or (2) wm.exe. Published: May 05, 2013; 7:07:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2013-1609 |
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x before 10.0.1 allow local users to gain privileges via a Trojan horse program. Published: March 26, 2013; 10:07:27 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2012-4350 |
Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors. Published: December 18, 2012; 3:55:01 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2012-4349 |
Unquoted Windows search path vulnerability in Symantec Network Access Control (SNAC) 12.1 before RU2 allows local users to gain privileges via unspecified vectors. Published: December 11, 2012; 7:18:36 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2009-2761 |
Unquoted Windows search path vulnerability in the scheduler (sched.exe) in Avira AntiVir, AntiVir Premium, Premium Security Suite, and AntiVir Professional might allow local users to gain privileges via a malicious antivir.exe file in the "C:\Program Files\avira\" directory. Published: August 13, 2009; 12:30:01 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2007-5618 |
Unquoted Windows search path vulnerability in the Authorization and other services in VMware Player 1.0.x before 1.0.5 and 2.0 before 2.0.1, VMware Server before 1.0.4, and Workstation 5.x before 5.5.5 and 6.x before 6.0.1 might allow local users to gain privileges via malicious programs. Published: October 21, 2007; 5:17:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2007-5023 |
Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder. Published: September 21, 2007; 3:17:00 PM -0400 |
V3.x:(not available) V2.0: 6.9 MEDIUM |
CVE-2006-4994 |
Multiple unquoted Windows search path vulnerabilities in Apache Friends XAMPP 1.5.2 might allow local users to gain privileges via a malicious program file in %SYSTEMDRIVE%, which is run when XAMPP attempts to execute (1) FileZillaServer.exe, (2) mysqld-nt.exe, (3) Perl.exe, or (4) xamppcontrol.exe with an unquoted "Program Files" pathname. Published: September 25, 2006; 10:07:00 PM -0400 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2006-4315 |
Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under "Program Files" or its subdirectories. Published: August 23, 2006; 6:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-0858 |
Unquoted Windows search path vulnerability in (1) snsmcon.exe, (2) the autostartup mechanism, and (3) an unspecified installation component in StarForce Safe'n'Sec Personal + Anti-Spyware 2.0 and earlier, and possibly other StarForce Safe'n'Sec products, might allow local users to gain privileges via a malicious "program" file in the C: folder. Published: February 23, 2006; 6:02:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-0255 |
Unquoted Windows search path vulnerability in Check Point VPN-1 SecureClient might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when SecureClient attempts to launch the Sr_GUI.exe program. Published: January 17, 2006; 8:51:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-0229 |
Unquoted Windows search path vulnerability in Wehntrust might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when Wehntrust creates the autostart key. Published: January 17, 2006; 4:03:00 PM -0500 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-2005-4505 |
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path. Published: December 22, 2005; 7:03:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-3663 |
Unquoted Windows search path vulnerability in Kaspersky Anti-Virus 5.0 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder. Published: November 18, 2005; 1:04:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-2936 |
Unquoted Windows search path vulnerability in RealNetworks RealPlayer 10.5 6.0.12.1040 through 6.0.12.1348, RealPlayer 10, RealOne Player v2, RealOne Player v1, and RealPlayer 8 before 20060322 might allow local users to gain privileges via a malicious C:\program.exe file. Published: November 18, 2005; 1:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-2938 |
Unquoted Windows search path vulnerability in iTunesHelper.exe in iTunes 4.7.1.30 and iTunes 5 for Windows might allow local users to gain privileges via a malicious C:\program.exe file. Published: November 18, 2005; 1:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-2939 |
Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder. Published: November 18, 2005; 1:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-2940 |
Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the programs (1) GIANTAntiSpywareMain.exe, (2) gcASNotice.exe, (3) gcasServ.exe, (4) gcasSWUpdater.exe, or (5) GIANTAntiSpywareUpdater.exe. NOTE: it is not clear whether this overlaps CVE-2005-2935. Published: November 18, 2005; 1:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-2935 |
Unquoted Windows search path vulnerability in Microsoft AntiSpyware might allow local users to execute code via a malicious c:\program.exe file, which is run by AntiSpywareMain.exe when it attempts to execute gsasDtServ.exe. NOTE: it is not clear whether this overlaps CVE-2005-2940. Published: September 15, 2005; 5:03:00 PM -0400 |
V3.x:(not available) V2.0: 4.6 MEDIUM |